Описание
An Information Disclosure vulnerability exists in the my config file in NEtGEAR WGR614 v7 and v9, which could let a malicious user recover all previously used passwords on the device, for both the control panel and WEP/WPA/WPA2, in plaintext. This is a different issue than CVE-2012-6340.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:netgear:wgr614v9_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wgr614v9:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:netgear:wgr614v7_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wgr614v7:-:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00474
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
An Information Disclosure vulnerability exists in the my config file in NEtGEAR WGR614 v7 and v9, which could let a malicious user recover all previously used passwords on the device, for both the control panel and WEP/WPA/WPA2, in plaintext. This is a different issue than CVE-2012-6340.
EPSS
Процентиль: 64%
0.00474
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200